中文 EN

扫描报告

扫描新文件

低风险 — 风险评分 5/100
上次扫描:1 天前 重新扫描
5 /100
aioz-storage
Deploy static websites to AIOZ Storage with built-in templates or custom sites
A legitimate static website deployment skill for AIOZ Storage with no malicious behavior — the pre-scan flagged base64 IOCs are standard cryptographic encoding helpers for Macaroon token processing, not obfuscation.
技能名称aioz-storage
分析耗时35.5s
引擎pi
可以安装
Skill is safe to use. No action required.

安全发现 2 项

严重性 安全发现 位置
低危
Credential collection — user-provided secrets 敏感访问
The skill collects the user's AIOZ Storage email, password, and 12-word seed phrase. These are passed directly to API calls and cryptographic functions. While necessary for the service, the skill should make clear that seed phrases are never sent to external servers beyond the official AIOZ API.
Ask user for AIOZ Storage email and password
→ This is expected behavior for a storage deploy tool. No exfiltration observed — credentials flow only to api.aiozstorage.network.
 SKILL.md:31
提示
False positive pre-scan IOC: base64 encoding 文档欺骗
Pre-scan flagged Buffer.from(str, 'base64') at lines 217 and 225 as 'critical base64 obfuscation'. These are b64urlDecode and b64Decode — standard base64 decoding helpers used for Macaroon token encoding/decoding. No eval(atob()) pattern, no execution of decoded content.
function b64urlDecode(str: string): Uint8Array { return new Uint8Array(Buffer.from(str, 'base64')); }
→ No action needed. This is legitimate cryptographic code.
 grant-cli.ts:217
资源类型声明权限推断权限状态证据
命令执行 WRITE WRITE ✓ 一致 SKILL.md:npx ts-node, curl commands
网络访问 READ READ ✓ 一致 SKILL.md: curl to api.aiozstorage.network
文件系统 WRITE WRITE ✓ 一致 SKILL.md: git clone, cp -r, npm install
2 严重 10 项发现
🔒
严重 编码执行 Base64 编码执行(代码混淆)
Buffer.from(s, "base64"
grant-cli.ts:217
🔒
严重 编码执行 Base64 编码执行(代码混淆)
Buffer.from(str, "base64"
grant-cli.ts:225
🔗
中危 外部 URL 外部 URL
https://api.aiozstorage.network/api/v1/login
SKILL.md:31
🔗
中危 外部 URL 外部 URL
https://aiozstorage.network
SKILL.md:34
🔗
中危 外部 URL 外部 URL
https://aiozstorage.network/
SKILL.md:35
🔗
中危 外部 URL 外部 URL
https://aiozstorage.network/docs/tutorials/manage-buckets
SKILL.md:154
🔗
中危 外部 URL 外部 URL
https://api.aiozstorage.network/api/v1/zkeys
SKILL.md:159
🔗
中危 外部 URL 外部 URL
https://reg-api.aiozstorage.network/api/v1/access
SKILL.md:256
🔗
中危 外部 URL 外部 URL
https://s3.aiozstorage.network
SKILL.md:269
🔗
中危 外部 URL 外部 URL
https://api.aiozstorage.app/api/v1/websites
SKILL.md:291

目录结构

4 文件 · 46.6 KB · 1249 行
TypeScript 1f · 646L Markdown 1f · 343L JSON 2f · 260L
├─ 📜 grant-cli.ts TypeScript 646L · 22.9 KB
├─ 📋 package-lock.json JSON 245L · 10.2 KB
├─ 📋 package.json JSON 15L · 382 B
└─ 📝 SKILL.md Markdown 343L · 13.2 KB

依赖分析 3 项

包名版本来源已知漏洞备注
argon2-browser ^1.18.0 npm Appropriate for Argon2 key derivation from passphrase
ts-node ^10.9.2 npm TypeScript execution runtime
typescript ^5.3.3 npm Type checker only, not bundled

安全亮点

✓ SKILL.md is comprehensive and fully documents all operations — no hidden functionality
✓ All network requests target documented AIOZ Storage API endpoints
✓ No credential harvesting or exfiltration — credentials used only in intended API flow
✓ No reverse shell, C2, or data theft patterns detected
✓ No eval(), no atob() execution, no base64-to-shell pipelines
✓ grant-cli.ts is a readable, self-contained cryptographic utility (Macaroon/HMAC/AES-GCM)
✓ Dependencies (argon2-browser, ts-node) are standard and appropriate
✓ No cron jobs, startup hooks, or persistence mechanisms
✓ No access to sensitive paths like ~/.ssh, ~/.aws, or .env files